- Microsoft Intune Endpoint Privilege Management support is now available for Windows 365, allowing IT administrators to manage application elevations on Windows 365 Cloud PCs.
- Microsoft Intune Endpoint Privilege Management enables the controlled and time-limited elevation of privileges for specific tasks.
- Microsoft plans to extend Intune Endpoint Privilege Management support to Azure Virtual Desktop single-session VMs.
To strengthen security measures for businesses, Microsoft has introduced Intune Endpoint Privilege Management support for Windows 365 devices. The latest release gives IT administrators the ability to manage application elevations on Windows 365 Cloud PCs with Endpoint Privilege Management.
Microsoft Intune Endpoint Privilege Management is a solution that allows organizations to manage the elevation of privileges for standard users on Windows devices. It lets IT Pros create rules to elevate the privileges for certain tasks that require administrative privileges. These include installing applications, updating device drivers, and running Windows diagnostics. The service also helps to review and audit privilege elevations happening across an organization.
“Elevated privileges are offered for a discrete task, allowing employees to run as administrator for specific, authorized applications and keeping the scope and time limited. This allows enterprises to run standard users more efficiently and stay secure. It limits the organization’s attack surface while improving efficiency for IT teams and removing friction to accomplish work and achieve business goals,” Microsoft explained.
To apply EPM policies to Windows 365 Cloud PCs, IT admins will need to include the devices in their EPM policy assignment. However, this capability is only available for organizations with a Microsoft Intune Suite subscription or EPM licenses.
Overall, the new Microsoft Intune Endpoint Privilege Management support for Windows 365 should enhance the security posture of organizations. Microsoft also plans to include support for Azure Virtual Desktop single-session VMs in Intune Endpoint Privilege Management. However, there is no information available regarding the timeline for this feature to be available for enterprise customers.
Microsoft continues to enhance its Microsoft Intune suite with new features and capabilities. In June, Microsoft Intune introduced a new feature that allows IT admins to manage driver and firmware updates for Windows Enterprise edition users. Microsoft also added new mobile application management (MAM) capabilities tailored for Windows Enterprise devices.